Note: This is an archival copy of Security Sun Alert 201527 as previously published on http://sunsolve.sun.com.
Latest version of this security advisory is available from http://support.oracle.com
as Sun Alert 1001139.1.

UFS File Systems With Logging Enabled are Vulnerable to a Denial of Service (DoS) Attack

CategorySecurity

Release PhaseResolved

ProductSolaris 9 Operating System

Bug Id
4640210

Date of Resolved Release05-MAR-2003

Impact

A local unprivileged user may be able to cause a denial of service attack so that a ufs file system will appear to be non-functional (non-responding) system wide until the system is rebooted.

Contributing Factors

This issue can occur in the following releases:

SPARC Platform

Solaris 9 without patch 113454-03

Note: Solaris 2.6, Solaris 7 and Solaris 8 are not affected by this issue.

Note: Solaris 9 on x86 platforms is not affected by this issue.

This issue may only occur on ufs file systems that are mounted with the "logging" option enabled. To see if any ufs file systems have logging enabled, see the "/etc/vfstab" file. For example, the following "/etc/vfstab" file: